CVE-2019-7193 | SynScan

Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2019-7193

This improper input validation vulnerability allows remote attackers to inject arbitrary code to the system. To fix the vulnerability, QNAP recommend updating QTS to their latest versions.

Published: Dec 5, 2019
Updated: Jun 29, 2024
CVE: CVE-2019-7193
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
qnap / qts	4.4.1.1033-beta_4	4.4.1.1033-beta_4.x
qnap / qts	4.4.1.1031-beta_4	4.4.1.1031-beta_4.x
qnap / qts	4.4.1.0999-beta_3	4.4.1.0999-beta_3.x
qnap / qts	4.4.1.0998-beta_3	4.4.1.0998-beta_3.x
qnap / qts	4.4.1.0978-beta_2	4.4.1.0978-beta_2.x
qnap / qts	4.4.1.0949-beta	4.4.1.0949-beta.x
qnap / qts	4.4.1.0948-beta	4.4.1.0948-beta.x
qnap / qts	4.3.6.1033	4.3.6.1033.x
qnap / qts	4.3.6.1013	4.3.6.1013.x
qnap / qts	4.3.6.0993	4.3.6.0993.x
qnap / qts	4.3.6.0979	4.3.6.0979.x
qnap / qts	4.3.6.0959	4.3.6.0959.x
qnap / qts	4.3.6.0944	4.3.6.0944.x
qnap / qts	4.3.6.0923	4.3.6.0923.x
qnap / qts	4.3.6.0907	4.3.6.0907.x
qnap / qts	4.3.6.0895	4.3.6.0895.x